Lockbit says it has hit eFile.com, again

eFile is yet to comment on the claims

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

American online tax filing platform, eFile.com, appears to have suffered (yet another)ransomwareattack.

Earlier this week, ransomware operators LockBit added the company to their extortion site, threatening to leak the files stolen during the raid,The Registerreports. However, the company has not yet confirmed, nor denied, the attack.

Therefore, we don’t know if the attack even occurred, and even if it did - what kind of data the hackers stole, who was affected, and how many people are at risk.

Tax season

Tax season

eFile.com is not a government organization, and is not affiliated with the Internal Revenue Service (IRS) in any way. It is a private, commercial, online tax filing platform that allows users to prepare and e-file their federal and state tax returns electronically. It offers both free and paid options, and comes with a user-friendly interface and step-by-step guidance to simplify the tax filing process. It is, however, authorized by the IRS to run its business.

Cybercriminals are no strangers to attacking the IRS, or other businesses adjacent to tax obligations. However, the attacks usually occur during the tax season (between early January and mid-April in a year), since in that period hackers have a solid chance of not being spotted quickly. Most of the time, the crooks would impersonate the IRS and send out phishing emails to their victims, to get them to either installmalware, or share sensitive information.

In some cases, the crooks would obtain so much PII that they wouldsteal a person’s identityand file their tax returns, essentially stealing money from them.

This attack, having happened outside tax season, raises many questions. The Register, for example, suspects the crooks might be recycling data from a 2022 breach. They could also be straight-up lying, in an attempt to regain some fame after being disrupted by law enforcement.

Are you a pro? Subscribe to our newsletter

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

ViaThe Register

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Cisco issues patch to fix serious flaw allowing possible industrial systems takeover

Washington state court systems taken offline following cyberattack

Owl Labs Meeting Owl 4+ review